Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/DD816E7287C811F09068D298DAE4EC9C.roa
File: DD816E7287C811F09068D298DAE4EC9C.roa (raw, json)
Hash identifier: Ni8uWaBE6ZWVY8Uxgo3BVKTeCkJ/dnrQawBpHtCtOAU=
Subject key identifier: 23:9C:2D:4F:FB:2A:A9:EB:2D:C8:6A:AC:FC:68:B5:C3:E0:73:0F:D3
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 15B9
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/DD816E7287C811F09068D298DAE4EC9C.roa
Signing time: Tue 02 Sep 2025 06:48:43 +0000
ROA not before: Tue 02 Sep 2025 06:48:38 +0000
ROA not after: Thu 02 Sep 2027 06:48:38 +0000
asID: 174
IP address blocks: 102.129.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Sep 2025 08:51:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5561 (0x15b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Sep 2 06:48:38 2025 GMT
Not After : Sep 2 06:48:38 2027 GMT
Subject: CN=68b6934b-65a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:08:86:66:45:61:9e:2d:1f:06:2e:e5:7a:9b:
68:c4:95:9b:8b:32:fb:c1:8d:25:fa:0d:31:9f:e6:
1c:ae:f6:6b:f4:a0:1a:e4:78:e4:ac:2b:bf:22:40:
1e:1c:bd:8c:92:95:14:97:4d:6f:51:40:ee:21:a1:
cf:0e:bf:c2:2f:ff:64:18:f7:4a:94:df:94:45:64:
a4:27:cf:bb:94:cf:3b:4e:ff:30:e1:09:7f:a9:5f:
63:8f:b7:3f:e4:83:99:e8:3c:24:ff:41:5f:ae:dd:
a6:b9:5b:1d:66:69:88:7c:a1:2c:7d:99:1b:ec:c1:
a4:ea:55:b1:c6:1d:b9:fe:8c:90:1f:3d:67:5e:86:
23:60:37:13:d1:21:4a:35:8c:76:a9:36:3f:4b:79:
a0:5f:a0:2b:e0:ff:0c:2d:b2:6c:4b:ae:37:57:b8:
a1:4a:5c:ea:0d:7c:16:d2:a9:95:eb:9b:2e:68:9b:
65:44:d0:fe:44:0e:22:76:f9:4b:92:c1:e3:45:8c:
ee:ec:eb:ae:bf:4e:f2:7b:2a:85:6b:6c:e3:6d:ba:
06:fb:24:a1:fc:c0:45:1b:97:76:8a:79:bf:8a:bf:
cf:e7:4c:5c:5c:b9:64:f1:14:a3:34:12:9f:94:c4:
e2:5a:1e:7e:a4:3e:9d:64:c8:33:87:54:06:76:eb:
24:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:9C:2D:4F:FB:2A:A9:EB:2D:C8:6A:AC:FC:68:B5:C3:E0:73:0F:D3
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/DD816E7287C811F09068D298DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.153.0/24
Signature Algorithm: sha256WithRSAEncryption
69:61:a3:87:71:04:de:2e:f8:32:4f:2a:fb:3f:72:07:42:d9:
bb:b0:89:fb:57:cc:b4:4e:ea:4d:86:56:02:5f:5b:1d:b2:85:
ab:68:64:94:08:fa:46:2e:a1:fc:d0:f5:58:db:e2:8c:45:10:
06:db:c9:86:2d:33:ea:20:21:6d:b9:52:6d:3b:ff:20:1f:45:
6a:0b:b4:92:61:b8:b6:7f:0f:45:89:b5:ba:b3:fa:a6:4c:dc:
97:06:70:18:f6:7d:7d:ba:9c:3d:f9:d2:39:f7:a2:35:d4:b3:
91:28:fc:1a:c6:22:4b:bb:26:dc:20:ff:c8:bb:43:ff:cd:33:
a2:fd:84:e6:64:ae:15:61:28:fd:61:7b:65:a2:3c:c7:78:60:
76:81:6d:8e:93:6c:1e:69:4b:ca:0d:67:b4:30:34:16:11:8b:
70:b3:6a:99:f4:e8:c2:e3:88:ff:fb:02:e9:71:43:b4:eb:38:
67:a8:f8:32:d3:09:4a:13:cd:48:f2:c3:5f:ef:39:5c:43:59:
6e:c8:de:fb:9a:46:c6:ee:b9:16:15:4d:37:b2:47:f1:9a:76:
16:3a:7f:e3:c0:6b:35:4c:5b:92:87:60:63:2c:eb:de:54:92:
54:f6:5c:09:d9:83:71:45:d5:d3:75:c9:63:0d:78:d1:58:bc:
f5:7f:f1:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 13 20:22:34 2025 by rpki-client